Authentication Bypass Vulnerability on D-Link DSL-2740B Gateway
CVE-2013-2271

Currently unrated

Key Information:

Vendor

D-Link

Vendor
CVE Published:
19 November 2013

What is CVE-2013-2271?

The D-Link DSL-2740B Gateway, when running firmware EU_1.0, is susceptible to a vulnerability that allows remote attackers to bypass authentication when an active administrator session exists. By manipulating requests sent to login.cgi, attackers can gain unauthorized administrative access without needing valid credentials, which could lead to further exploitation of the device and compromise the network security.

References

EPSS Score

34% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

.